This privacy policy explains to you the nature, scope and purpose of the processing of personal data (hereinafter referred to as "data") in the context of the provision of my services and within my online services and the websites, functions and content associated with it (hereinafter jointly referred to as "online services"). With regard to the terms used, such as "processing" or "controller", I refer to the definitions in Art. 4 of the Basic Data Protection Regulation (DSGVO).
responsible persons
Noel Tovia Maoff
Cheruskerstr.20
10829 Berlin
Telephone number: 0049 176 323 20 867
E-mail address: n.matoff@mailbox.org
Imprint: matoff.de/imprint
Types of data processed
- Meta/communication data (e.g., device information, IP addresses).
Categories of data subjects
- Visitors and users of the online offer (In the following I will refer to the persons concerned in summary as "users").
Purpose of processing
- Provision of the online offer, its functions and contents.
- Security measures.
- range measurement
Terms used
"processing' means any operation or set of operations which is carried out with or without the aid of automated processes and which involves personal data. The term reaches far and covers practically every handling of data.
"pseudonymisation' means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the provision of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures ensuring that the personal data are not attributed to an identified or identifiable natural person.
controller" means any natural or legal person, public authority, agency or body which alone or jointly with others determines the purposes and means of the processing of personal data.
"processor' means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
Cooperation with contract processors, joint managers and third parties
If I disclose data to other persons and companies (contract processors, jointly responsible persons or third parties), transfer them to them or otherwise grant them access to the data within the scope of processing, this is only done on the basis of a legal permission (e.g. if a transfer of the data to third parties, such as payment service providers, is necessary for the fulfilment of the contract), users have consented, a legal obligation provides for this or on the basis of my legitimate interests (e.g. when using agents, web hosts, etc.).
Transfers to third countries
If I process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA) or the Swiss Confederation) or if this is done in the context of using the services of third parties or disclosure or transfer of data to other persons or companies, this will only take place if it is done to fulfil my (pre-)contractual obligations, on the basis of your consent, on the basis of a legal obligation or on the basis of my legitimate interests. Subject to express consent or contractually required transfer, I will only process or allow data to be processed in third countries with a recognised level of data protection, including the US processors certified under the "Privacy Shield" or on the basis of special guarantees, such as contractual obligations through so-called standard protection clauses of the EU Commission, the existence of certifications or binding internal data protection regulations (Art. 44 to 49 DSGVO, information page of the EU Commission).
right of withdrawal
You have the right to revoke any consent you have given with effect for the future.
Deletion of data
The data processed by me will be deleted in accordance with the statutory provisions or their processing will be restricted. Unless expressly stated in this data protection declaration, the data stored by me will be deleted as soon as they are no longer required for their intended purpose and there are no legal obligations to retain them.
If the data are not deleted because they are required for other and legally permissible purposes, their processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be stored for commercial or tax reasons.
Hosting and e-mailing
The hosting services used by me serve the provision of the following services: Infrastructure and platform services, computing capacity, storage space and database services, e-mail dispatch, security services and technical maintenance services which we use for the purpose of operating this online service.
In doing so, I or my hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors to this online service on the basis of my legitimate interests in the efficient and secure provision of this online service in accordance with Art. 6 Para. 1 lit. f DSGVO i.V.m. Art. 28 DSGVO (conclusion of contract processing agreement).
Collection of access data and log files
I, and/or my Hostinganbieter, raises on basis my entitled interests in the sense of the art. 6 exp. 1 lit. f. DSGVO Data about each access to the server on which this service is located (so-called server log files). The access data includes the name of the website accessed, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider.
Log file information is stored for security reasons (e.g. for the clarification of abuse or fraud actions) for the duration of maximally 7 days and deleted afterwards. Data, the further storage of which is necessary for evidence purposes, are excluded from deletion until the respective incident has been finally clarified.